$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140378.roa File: AS140378.roa (raw, json) Hash identifier: W1zAbJbUS5ikXKrt8I5JSD3TaewgHVcs7zb1ie0BiGs= Subject key identifier: 1E:EA:A9:BB:33:EF:37:42:83:0B:BB:28:73:01:D8:AD:FC:60:7E:31 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 0425ABA10B4893AD30AC42652068A7DE00CC49CC Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140378.roa Signing time: Mon 01 Jun 2026 16:41:13 +0000 ROA not before: Mon 01 Jun 2026 16:36:13 +0000 ROA not after: Mon 31 May 2027 16:41:13 +0000 asID: 140378 IP address blocks: 240e:96b:602a::/48 maxlen: 48 240e:96b:602b::/48 maxlen: 48 240e:96b:602c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:25:ab:a1:0b:48:93:ad:30:ac:42:65:20:68:a7:de:00:cc:49:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 1 16:36:13 2026 GMT Not After : May 31 16:41:13 2027 GMT Subject: CN=1EEAA9BB33EF3742830BBB287301D8ADFC607E31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e1:2a:6f:00:d9:72:2d:70:fb:1e:13:b0:bc: 76:3e:cb:90:a2:c8:15:68:67:a5:6e:3e:80:97:35: 5f:f3:d8:d7:96:13:a6:3f:ee:a9:31:2a:66:52:57: 86:6b:9d:64:21:75:bc:78:e2:fa:38:d5:18:4d:80: 04:7a:54:46:90:d7:66:06:1f:d1:49:61:1a:5b:5e: 49:4d:54:bf:cc:bc:03:f1:57:54:70:5d:d3:07:ae: 86:21:d0:53:ff:15:cf:54:47:cf:a6:70:0a:2f:00: 9d:05:d5:b7:16:32:14:e5:b4:2f:26:76:04:a9:3a: 83:24:e8:29:f4:44:7a:6e:67:90:23:80:f5:34:93: 7a:7f:53:61:3b:cc:d2:6c:57:c2:dc:96:4f:0b:de: 14:55:e3:ae:8e:e1:67:29:eb:a0:2f:05:b3:54:f9: 59:cb:a8:03:d1:44:a0:01:14:07:71:b0:03:6f:82: 12:05:a4:6a:64:cf:ec:54:14:dd:2d:72:83:1f:74: 7a:29:b4:34:dc:37:3a:da:43:08:a2:a4:cf:54:72: 2d:a8:6e:ad:48:f7:87:e1:ac:21:f6:07:1d:44:f1: 37:0c:a0:7b:75:a4:ed:12:21:6f:df:17:7b:cb:3f: 3d:24:1b:b8:ff:f7:ab:6a:01:61:0e:9f:ff:6d:f9: f6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:EA:A9:BB:33:EF:37:42:83:0B:BB:28:73:01:D8:AD:FC:60:7E:31 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140378.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:96b:602a::-240e:96b:602c:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 98:86:b8:e0:45:83:3b:71:5e:6e:c2:ca:5a:9e:93:1d:eb:d1: 22:53:1f:fc:23:31:58:85:6d:4d:db:9c:58:66:1c:f4:8f:25: 12:28:47:a1:59:9d:58:cc:f7:42:64:84:f4:71:cd:27:3a:f5: e3:3f:0a:a6:3a:2b:7f:ac:42:f5:3c:1f:d8:a2:00:9f:b2:e3: eb:0a:a0:6e:8c:30:cb:db:e2:13:b8:da:52:6c:7f:75:6b:e9: 78:2c:24:dd:56:14:1e:9f:8d:16:3d:1e:bd:ee:1d:4b:08:0a: 44:4e:df:c5:89:13:62:c0:0f:f2:f0:ff:ec:75:8b:ba:12:3a: a0:58:92:f7:85:6b:a5:0e:4a:cd:df:cf:60:f0:74:ac:22:a6: 8d:d6:42:57:c6:b2:9f:a0:58:2e:a9:cd:ad:fd:89:21:45:b0: 88:ee:e3:4f:f6:f2:5e:50:c0:0e:06:a1:51:b4:2b:b3:c1:5b: 7c:1e:3e:a2:34:ce:8d:31:9c:48:33:27:49:42:e2:e8:b7:bf: 56:62:0b:ac:5e:e1:44:a7:06:f8:c3:5b:86:42:e6:e3:ac:99: 26:ec:95:c3:52:9d:9b:f0:18:f9:6a:76:bf:88:5d:0b:09:4a: ef:57:8e:33:c3:59:e8:6b:df:52:0a:f2:a5:eb:72:9b:da:7a: ea:c1:7a:b6 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUBCWroQtIk60wrEJlIGin3gDMScwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMTE2MzYxM1oX DTI3MDUzMTE2NDExM1owMzExMC8GA1UEAxMoMUVFQUE5QkIzM0VGMzc0MjgzMEJC QjI4NzMwMUQ4QURGQzYwN0UzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7hKm8A2XItcPseE7C8dj7LkKLIFWhnpW4+gJc1X/PY15YTpj/uqTEqZlJX hmudZCF1vHji+jjVGE2ABHpURpDXZgYf0UlhGlteSU1Uv8y8A/FXVHBd0weuhiHQ U/8Vz1RHz6ZwCi8AnQXVtxYyFOW0LyZ2BKk6gyToKfREem5nkCOA9TSTen9TYTvM 0mxXwtyWTwveFFXjro7hZynroC8Fs1T5WcuoA9FEoAEUB3GwA2+CEgWkamTP7FQU 3S1ygx90eim0NNw3OtpDCKKkz1RyLahurUj3h+GsIfYHHUTxNwyge3Wk7RIhb98X e8s/PSQbuP/3q2oBYQ6f/2359s8CAwEAAaOCAfIwggHuMB0GA1UdDgQWBBQe6qm7 M+83QoMLuyhzAdit/GB+MTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzc4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwEkDglrYCoDBwAkDglrYCww DQYJKoZIhvcNAQELBQADggEBAJiGuOBFgztxXm7Cylqekx3r0SJTH/wjMViFbU3b nFhmHPSPJRIoR6FZnVjM90JkhPRxzSc69eM/CqY6K3+sQvU8H9iiAJ+y4+sKoG6M MMvb4hO42lJsf3Vr6XgsJN1WFB6fjRY9Hr3uHUsICkRO38WJE2LAD/Lw/+x1i7oS OqBYkveFa6UOSs3fz2DwdKwipo3WQlfGsp+gWC6pza39iSFFsIju40/28l5QwA4G oVG0K7PBW3wePqI0zo0xnEgzJ0lC4ui3v1ZiC6xe4USnBvjDW4ZC5uOsmSbslcNS nZvwGPlqdr+IXQsJSu9XjjPDWehr31IK8qXrcpvaeurBerY= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:35 2026 by rpki-client